Overview

overview

1

Static

static

1

NSM.ini

windows10-ltsc 2021-x64

1

cAlient32.ini

windows10-ltsc 2021-x64

1

nskbfltr.inf

windows10-ltsc 2021-x64

1

nsm_vpro.ini

windows10-ltsc 2021-x64

1

Resubmissions

04-12-2024 04:28

241204-e3ta3sxlep 1

04-12-2024 03:02

241204-djgmhatpdm 1

04-12-2024 02:46

241204-c9ep6axpg1 10

Analysis

  • max time kernel
    98s
  • max time network
    141s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241023-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    04-12-2024 04:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cAlient32.ini

  • Size

    361B

  • MD5

    5d270b8ddcedf2b95c83b6824fbf9aa0

  • SHA1

    24e9c2d60951b87710c6e6c9572001be57c3e6bc

  • SHA256

    903367aa75a70cfb9d6ac0d985c11a7c7dfbf8c57f480820e869dbeefbcf3363

  • SHA512

    8464d9f3582fcf3312e0f6c8157e56e10fd4651e1e1c8e5240465f44f7cddb70465f50ec6cd40d7c27892d6bddb7e519de5179f5fa17927c359f2ae669e347a3

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\cAlient32.ini
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:3584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads